This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a59e8c2f-e590-4a4f-8463-8317c2a1c048/1/32372e302e3233352e302f32342d3332203d3e20323035383438.roa File: 32372e302e3233352e302f32342d3332203d3e20323035383438.roa (raw, json) Hash identifier: tHR53zr4UgIS56fxg0rrIzo3BRWKByol9KLXj3FQw2s= Subject key identifier: 31:7B:C4:6D:E3:34:52:17:E1:F8:C5:07:97:23:B8:45:B6:4A:31:30 Certificate issuer: /CN=3537F961668E4765578095AB33A4351BB72C9A63 Certificate serial: 6DC573BE435DB47F5A8621E7D5E2A717DE2A20A1 Authority key identifier: 35:37:F9:61:66:8E:47:65:57:80:95:AB:33:A4:35:1B:B7:2C:9A:63 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/3537F961668E4765578095AB33A4351BB72C9A63.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a59e8c2f-e590-4a4f-8463-8317c2a1c048/1/32372e302e3233352e302f32342d3332203d3e20323035383438.roa Signing time: Wed 31 Dec 2025 21:17:35 +0000 ROA not before: Wed 31 Dec 2025 21:12:35 +0000 ROA not after: Wed 30 Dec 2026 21:17:35 +0000 asID: 205848 IP address blocks: 27.0.235.0/24 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a59e8c2f-e590-4a4f-8463-8317c2a1c048/1/3537F961668E4765578095AB33A4351BB72C9A63.crl rsync://rsync.paas.rpki.ripe.net/repository/a59e8c2f-e590-4a4f-8463-8317c2a1c048/1/3537F961668E4765578095AB33A4351BB72C9A63.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/3537F961668E4765578095AB33A4351BB72C9A63.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 13:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:c5:73:be:43:5d:b4:7f:5a:86:21:e7:d5:e2:a7:17:de:2a:20:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3537F961668E4765578095AB33A4351BB72C9A63 Validity Not Before: Dec 31 21:12:35 2025 GMT Not After : Dec 30 21:17:35 2026 GMT Subject: CN=317BC46DE3345217E1F8C5079723B845B64A3130 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:d6:2e:5b:c3:7a:78:5c:8e:31:2e:4b:83:4c: 04:26:ca:9e:53:f5:40:9f:28:7d:0b:6b:d0:96:89: bc:ac:c6:d7:3b:8d:d8:c5:78:4f:ef:1a:c0:90:87: 2e:d5:74:5d:fa:20:04:2c:dc:84:ae:c7:a4:e4:2a: 0e:38:78:62:93:fa:e8:b5:46:2b:5d:eb:0d:d6:88: 6d:d5:8a:ad:68:ed:e0:70:4f:8c:f8:7c:ba:03:7a: a3:8d:a0:fc:69:44:2e:e7:2d:90:2d:a5:70:69:f4: f8:32:f7:f0:6f:c4:ca:17:e7:41:dd:0c:e0:e3:bc: ee:6d:9b:c0:48:1c:7d:28:2a:bd:85:52:25:05:07: c8:a9:7c:ba:1f:df:18:15:27:a4:ce:4d:56:f9:18: d1:46:c1:d8:31:0c:be:72:10:2a:35:50:3b:ea:99: cf:29:58:28:1f:8b:69:f9:d8:c9:32:ee:07:24:05: de:17:f7:bc:6c:e7:77:9a:6d:db:5f:d7:61:72:53: c8:47:56:34:7c:5c:e8:a2:3a:27:dc:92:2a:cb:78: ba:18:c3:54:37:49:50:bd:c5:09:b5:53:f2:14:f9: 0e:7b:d1:e5:1e:36:92:dd:94:60:f2:bb:a7:5e:31: 1c:ae:30:65:0c:16:82:5f:07:ed:77:fd:35:ab:5e: be:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:7B:C4:6D:E3:34:52:17:E1:F8:C5:07:97:23:B8:45:B6:4A:31:30 X509v3 Authority Key Identifier: keyid:35:37:F9:61:66:8E:47:65:57:80:95:AB:33:A4:35:1B:B7:2C:9A:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a59e8c2f-e590-4a4f-8463-8317c2a1c048/1/3537F961668E4765578095AB33A4351BB72C9A63.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/3537F961668E4765578095AB33A4351BB72C9A63.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a59e8c2f-e590-4a4f-8463-8317c2a1c048/1/32372e302e3233352e302f32342d3332203d3e20323035383438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.0.235.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:ce:1b:9f:1c:bd:ca:a1:48:5e:06:3a:c8:c3:08:2d:16:b4: 63:a8:2e:f1:e9:85:4f:9b:d6:4a:26:d9:18:2a:e0:e1:14:a4: 3c:0f:1c:07:ff:98:e2:ef:63:65:85:91:b6:74:06:e1:2f:12: c2:47:38:e1:e0:c2:fb:19:9d:3c:32:53:c0:84:f5:2c:41:27: bf:73:7c:1d:90:67:a6:28:9c:8b:87:81:53:fe:89:71:ff:a0: 53:68:1a:9a:08:97:83:71:73:a5:8c:c0:fe:4d:ed:a3:aa:ed: c1:99:e4:5f:2a:49:a0:91:72:cc:e1:d3:98:64:c9:e6:58:e5: 3e:46:87:de:71:9c:bb:84:3d:54:9e:57:47:eb:bb:49:39:0c: aa:ed:60:85:df:3a:70:6a:4e:d4:b9:8a:69:61:70:2b:1f:81: 66:35:3a:aa:29:b8:82:c3:2f:4d:e1:e8:0e:5d:3a:ac:d3:b2: 60:94:44:ac:c5:95:42:1d:0a:44:42:e7:ad:aa:4d:6b:f5:27: 82:96:5e:c7:6d:bf:f1:9a:af:c5:30:8a:26:4c:cf:83:76:57: 3d:ec:d9:85:4d:74:8c:53:e5:72:ba:5a:25:ce:fa:df:6d:d9: be:5f:eb:cf:78:cb:25:a9:7d:2f:aa:da:c6:51:fd:db:86:92: ce:93:d1:b5 -----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIUbcVzvkNdtH9ahiHn1eKnF94qIKEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzUzN0Y5NjE2NjhFNDc2NTU3ODA5NUFCMzNBNDM1MUJC NzJDOUE2MzAeFw0yNTEyMzEyMTEyMzVaFw0yNjEyMzAyMTE3MzVaMDMxMTAvBgNV BAMTKDMxN0JDNDZERTMzNDUyMTdFMUY4QzUwNzk3MjNCODQ1QjY0QTMxMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk1i5bw3p4XI4xLkuDTAQmyp5T 9UCfKH0La9CWibysxtc7jdjFeE/vGsCQhy7VdF36IAQs3ISux6TkKg44eGKT+ui1 Ritd6w3WiG3Viq1o7eBwT4z4fLoDeqONoPxpRC7nLZAtpXBp9Pgy9/BvxMoX50Hd DODjvO5tm8BIHH0oKr2FUiUFB8ipfLof3xgVJ6TOTVb5GNFGwdgxDL5yECo1UDvq mc8pWCgfi2n52Mky7gckBd4X97xs53eabdtf12FyU8hHVjR8XOiiOifckirLeLoY w1Q3SVC9xQm1U/IU+Q570eUeNpLdlGDyu6deMRyuMGUMFoJfB+13/TWrXr53AgMB AAGjggJrMIICZzAdBgNVHQ4EFgQUMXvEbeM0Uhfh+MUHlyO4RbZKMTAwHwYDVR0j BBgwFoAUNTf5YWaOR2VXgJWrM6Q1G7csmmMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTU5ZThjMmYtZTU5MC00YTRmLTg0NjMtODMxN2MyYTFj MDQ4LzEvMzUzN0Y5NjE2NjhFNDc2NTU3ODA5NUFCMzNBNDM1MUJCNzJDOUE2My5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvMzUzN0Y5NjE2NjhFNDc2NTU3ODA5NUFCMzNBNDM1MUJCNzJD OUE2My5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYTU5ZThjMmYt ZTU5MC00YTRmLTg0NjMtODMxN2MyYTFjMDQ4LzEvMzIzNzJlMzAyZTMyMzMzNTJl MzAyZjMyMzQyZDMzMzIyMDNkM2UyMDMyMzAzNTM4MzQzOC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEABsA 6zANBgkqhkiG9w0BAQsFAAOCAQEAnc4bnxy9yqFIXgY6yMMILRa0Y6gu8emFT5vW SibZGCrg4RSkPA8cB/+Y4u9jZYWRtnQG4S8Swkc44eDC+xmdPDJTwIT1LEEnv3N8 HZBnpiici4eBU/6Jcf+gU2gamgiXg3FzpYzA/k3to6rtwZnkXypJoJFyzOHTmGTJ 5ljlPkaH3nGcu4Q9VJ5XR+u7STkMqu1ghd86cGpO1LmKaWFwKx+BZjU6qim4gsMv TeHoDl06rNOyYJRErMWVQh0KRELnrapNa/UngpZex22/8ZqvxTCKJkzPg3ZXPezZ hU10jFPlcrpaJc76323Zvl/rz3jLJal9L6raxlH924aSzpPRtQ== -----END CERTIFICATE-----Generated at Sat Jan 10 22:06:51 2026 by rpki-client